Alternatives and similar repositories for c2

Users that are interested in c2 are comparing it to the libraries listed below

• winsecurity / Offensive-C-Sharp
  ☆166Updated 2 years ago
• MythicAgents / Athena
  ☆207Updated 3 months ago
• dobin / antnium
  A C2 framework for initial access in Go
  ☆188Updated 3 years ago
• smokeme / airstrike
  ☆167Updated last year
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆267Updated 2 years ago
• iilegacyyii / Shellcrypt
  A QoL tool to obfuscate shellcode. In the future will be able to chain encoding/encryption/compression methods.
  ☆205Updated 2 years ago
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆147Updated 2 years ago
• kymb0 / Malware_learns
  ☆133Updated 2 years ago
• pracsec / AmsiBypassHookManagedAPI
  A new AMSI Bypass technique using .NET ALI Call Hooking.
  ☆192Updated 2 years ago
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆256Updated 3 years ago
• gh0x0st / wanderer
  An open-source process injection enumeration tool written in C#
  ☆171Updated 2 years ago
• paranoidninja / Brute-Ratel-C4-Community-Kit
  This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)
  ☆277Updated last year
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆333Updated last year
• nettitude / ShellcodeMutator
  ☆248Updated 2 years ago
• Peco602 / cobaltstrike-aggressor-scripts
  A collection of Cobalt Strike Aggressor scripts.
  ☆99Updated 3 years ago
• MythicAgents / Medusa
  Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic
  ☆186Updated this week
• SaadAhla / GithubC2
  Github as C2 Demonstration , free API = free C2 Infrastructure
  ☆140Updated 2 years ago
• NUL0x4C / NoRunPI
  Run Your Payload Without Running Your Payload
  ☆180Updated 2 years ago
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆380Updated last year
• Enelg52 / KittyStager
  KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…
  ☆222Updated 2 years ago
• RedTeamOperations / Journey-to-McAfee
  ☆113Updated 3 years ago
• klezVirus / klezVirus.github.io
  CyberSec Blog
  ☆97Updated this week
• dievus / PowerShellRunner
  PowerShell runner for executing malicious payloads in order to bypass Windows Defender.
  ☆73Updated 3 years ago
• S3cur3Th1sSh1t / Ruy-Lopez
  ☆305Updated 2 years ago
• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆189Updated 10 months ago
• kleiton0x00 / Shelltropy
  A technique of hiding malicious shellcode via Shannon encoding.
  ☆255Updated 2 years ago
• georgesotiriadis / MalwareDev
  ☆85Updated 2 years ago
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆140Updated last year
• cepxeo / dll4shell
  Shellcode launcher for AV bypass
  ☆216Updated last year
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆161Updated 8 months ago